Reputation: 31
How to restrict .exe extension while uploading image in java script?/
Am trying to change the file extension .exe to .png. When uploading the chnaged file it uploads.But its wrong. Without validating the file extension, any other solution to validate??
Upvotes: 3
Views: 691
Answers (1)
Reputation: 26352
There is no way to do this on the browser side and provide the needed security. You must always have some server side validation to protect your backend systems.
At the end of the day, the js and html code are available to the end user and can be bypassed at any time.
Validating the file extension for input is not a security measure but a user experience one.
In any case you can follow the excellent answer here: How to check file MIME type with javascript before upload? to read the bytes from the file and see if it is an exe. You just need to look for the exe header bytes instead of the image ones: http://faydoc.tripod.com/structures/15/1594.htm
Upvotes: 1
Related Questions
- How to allow <input type=“file”> to accept only .jpeg and .jpg files?
- How do I prevent certain files types from being uploaded in Angular?
- How to restrict a .exe.png or renaming .exe file to png file to upload in angular 8
- How to restrict the files based on extension using Angular?
- Angular js fileupload allow only image extensions
- Validating file extension in AngularJs before uploading
- Nervgh Angular File Upload - How do I restrict the file formats to say jpeg and png?
- How i can restrict some file formats to be upload?
- Only allow specific file extensions in angular-file-upload module to be clickable
- How to restrict file extension in operating System dialog box from HTML form